Home > Windows Server Tips > Windows Server Monitoring and Management > Guarding Windows 2000 servers from unauthorized users
Windows Server Tips:
EMAIL THIS
 TIPS & NEWSLETTERS TOPICS 

WINDOWS SERVER MONITORING AND MANAGEMENT

Guarding Windows 2000 servers from unauthorized users


Rahul Shah, Contributor
12.27.2006
Rating: -4.25- (out of 5)


Expert advice on Windows-based systems and hardware
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


With maintaining the security of corporate data available on your organization's servers becoming more critical, administrators now must monitor their servers for unauthorized user access.

Checking unauthorized access basically involves enabling security auditing and viewing the security logs. One thing which is needed to set up security audits on servers is that you should be a member of administrative groups or have security rights and privileges.

To enable security auditing on standalone servers or Windows 2000 Professional, follow these steps:

  1. Go to Start. Select Run.
  2. Type mmc /a in the Run dialog box. Click OK.
  3. On the Console menu, go to File menu and click Add/Remove Snap-in.
  4. Click on the Add button. This will open up another window.
  5. Click Group Policy. Then click on Add button.
  6. In the Select Group Policy Object box, click Local Computer, click Finish, click Close, then click OK.
  7. In the Local Computer Policy box, click Computer Configuration ->Windows Settings - > Security Settings -> Local Policies -> Audit Policy.
  8. In the details pane, click Audit logon events.
  9. Click Action -> Security, select Unsuccessful logon attempts and hit OK.

To enable security auditing on Windows 2000-Based Domain Controllers, folow these steps:

  1. Go to Start -> Programs -> Administrative Tools.
  2. Click Active Directory Users and Computers.
  3. In the console trees, select Domain Controllers.
  4. Click on Action, then click Properties.
  5. Click the Group Policy tab -> Default Domain Controllers Policy, and click Edit.
  6. Expand the Computer Configuration, Windows Settings, Security Settings, Local Policies, and then Audit Policy.
  7. In the details pane, click Audit logon events.
  8. On the Action menu, click Security, and select the "Define these policy settings check box" and click to select the Failure check box, and then click OK.

After enabling the security auditing, follow these steps to view the Security Logs:

  1. Click Start -> Programs -> Administrative tools.
  2. Select Event viewer.
  3. In the console tree, click Security log.
  4. Look in the details pane for information about the event you want to view. Double-click the event if you feel there's something fishy about it.

With the above steps, administrators can keep a close watch on users who are trying to gain illegal access to data on the servers.

About the author: Rahul Shah currently works at a software firm in India, where he is a systems administrator maintaining Windows servers. He has also worked for various software firms in testing and analytics, and also has experiences deploying client/server applications in different Windows configurations.

More information on this topic:


Rate this Tip
To rate tips, you must be a member of SearchWindowsServer.com.
Register now to start rating these tips. Log in if you are already a member.


Submit a Tip




Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google



RELATED CONTENT
Windows Server Monitoring and Management
How Windows Server 2008 R2 stands up to security checks
BitLocker in R2 provides data protection for semi-protected servers
Perfmon made easy with PAL utility
Converting Citrix XenServer source machines to Hyper-V format
Balancing Windows security with reasonable password policies
Windows AppLocker in R2: Turning conventional security wisdom on its head
Top 10 things you don't know about Windows Server 2008 R2
BranchCache makes branch offices feel like home
When to use VM backups versus snapshots in Hyper-V
Installing Server Core for Windows 2008 the easy way

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.



Server Room Design - Planning, Cooling, Maintenance
HomeTopicsBlogsITKnowledge ExchangeTipsNewsMultimediaWhite PapersIT Downloads
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2004 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts